CVE-2006-0564

Currently unrated

Key Information:

Vendor: Microsoft
Status: Html Help; Html Help Workshop
Vendor: CVE Published:; 6 February 2006

Summary

Stack-based buffer overflow in Microsoft HTML Help Workshop 4.74.8702.0, and possibly earlier versions, and as included in the Microsoft HTML Help 1.4 SDK, allows context-dependent attackers to execute arbitrary code via a .hhp file with a long Contents file field.

References

http://secunia.com/advisories/18740

third-party-advisoryx_refsource_SECUNIA

http://www.osvdb.org/22941

vdb-entryx_refsource_OSVDB

http://securitytracker.com/id?1015585

vdb-entryx_refsource_SECTRACK

EPSS Score

89% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 6, 2006
Vulnerability Reserved
Feb 6, 2006

Collectors

NVD DatabaseMitre Database